Privacy policy
1 Definition of terms
Our privacy policy contains the terms used by the European legislator for the adoption of the General Data Protection Regulation (GDPR).
Among other things, we use the following terms:
Personal data: is any information relating to an identified or identifiable natural person (data subject). An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier (e.g. cookie), or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.
Data subject: is any identified or identifiable natural person whose personal data is processed by a responsible person.
Processing: means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation, or alteration, retrieval, consultation, use, disclosure by transmission, dissemination, or otherwise making available, alignment or combination, restriction, deletion, or destruction.
Pseudonymization: is the processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organizational measures to ensure that the personal data are not attributed to an identified or identifiable natural person.
Profiling: is any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person, in particular to analyze or predict aspects concerning that natural person’s performance at work, economic situation, health, personal preferences, interests, reliability, behavior, location, or movements.
Responsible person / data controller: is the natural or legal person, public authority, agency, or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data.
Data processor: is a natural or legal person, public authority, agency, or other body that processes personal data on behalf of the data controller.
Third party: is a natural or legal person, public authority, agency, or body other than the data subject, controller, processor, and persons who, under the direct authority of the controller or processor, are authorized to process personal data.
2 General notes on mandatory information
Information on the responsible entity
The controller responsible for data processing on this website is:
HD Solutions GmbH
Danckelmannstr. 9
14059 Berlin
Germany
E-Mail: hello@esimony.com
CEO: Holger Zimmermann, Diana Bohlinth
Handelsregister entry: HRB 250803
If you have any questions about the collection, processing, or use of your personal data, or if you wish to request information, correction, restriction, or deletion of your data, or if you wish to revoke your consent, you can contact us directly.
Processed data
We process the following data:
- Inventory data (e.g. names, addresses)
- Contact data (e.g. emails, telephone numbers)
- Content data (e.g. texts, photos, videos)
- Usage data (e.g. websites visited, interest in content, access times)
- Metadata (e.g. device information, IP addresses)
Purpose of the processing
We process personal data for the following purposes:
- To make our online offer available
- To respond to contact requests and communicate with users
- Security measures
- Reach measurement and marketing
Legal basis
The legal basis for our data processing is Art. 13 GDPR. If the legal basis is not mentioned in the privacy policy, the following applies to users from the area of application of the General Data Protection Regulation (GDPR), i.e. the EU and the EEC:
- The legal basis for obtaining consent is Art. 6 para. 1 lit. a and Art. 7 GDPR.
- The legal basis for the processing for the fulfillment of our services and the implementation of contractual measures as well as answering inquiries is Art. 6 para. 1 lit. b GDPR.
- The legal basis for processing to fulfill our legal obligations is Art. 6 para. 1 lit. c GDPR.
- In the event that vital interests of the data subject or another natural person require the processing of personal data, Art. 6 para. 1 lit. d GDPR serves as the legal basis.
- The legal basis for the processing necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller is Art. 6 para. 1 lit. e GDPR.
- The legal basis for processing to preserve our legitimate interests is Art. 6 para. 1 lit. f GDPR.
- The processing of data for purposes other than those for which it was collected is governed by the provisions of Art. 6 (4) GDPR.
- The processing of special categories of data (in accordance with Art. 9 para. 1 GDPR) is governed by the provisions of Art. 9 para. 2 GDPR.
Rights of data subjects
You have the right to obtain confirmation as to whether or not personal data concerning you is being processed and access to this data as well as further information and a copy of the data in accordance with legal requirements. You also have the right to request the completion or correction of incorrect data concerning you.
Furthermore, you have the right to demand that the data in question be deleted immediately or, alternatively, that the processing of the data be restricted.
You have the right to request to receive the data concerning you that you have provided to us and to request its transmission to other controllers. You also have the right to lodge a complaint with the competent supervisory authority.
Right of withdrawal
Right of objection
Deleting data
In accordance with the applicable laws, the data processed by us will be deleted or restricted in its processing. Unless otherwise stated in this privacy policy, we delete the data we store as soon as it is no longer required for its purpose.
Data that may not be deleted due to statutory retention obligations or is required for other legally permissible purposes is restricted in processing. This means that they are blocked and not processed for other purposes. This applies, for example, to data that must be stored for commercial or tax law reasons.
Updates to the privacy policy
Business-related processing
We also process the following data from our customers, interested parties, and business partners for the purpose of providing contractual services and customer care as well as for marketing, advertising and market research:
- Contract data (e.g. subject matter of the contract, term, customer category)
- Payment data (e.g. bank details, payment history)
3 Cookies
The term “cookie” refers to a small file that is stored on users’ computers. They are mainly used to store information about users and the devices they use. Temporary cookies (also known as “session cookies” or “transient cookies”) are cookies that are deleted after a user leaves an online service and closes their browser (e.g. the contents of a shopping cart in an online store). “Permanent cookies” or “persistent cookies” are cookies that remain stored even after the browser is closed. For example, the interests of users can be stored in such a cookie in order to use this information for reach measurement or marketing purposes. “Third-party cookies” are cookies that originate from providers other than the operator of the online offer. Cookies of the operator are also called “first-party cookies.”
We may use temporary and permanent cookies.
Users who do not wish cookies to be stored on their computer can delete cookies already stored in their browser’s system settings and deactivate the corresponding option. We would like to point out that deactivating cookies can lead to functional restrictions of the online offer.
You can deactivate the storage of cookies in the settings of your browser. Furthermore, you can declare a general objection to the use of cookies for marketing purposes (especially tracking) via various services on the American website http://www.aboutads.info/choices/ or the European website http://www.youronlinechoices.com/. We would like to point out that deactivating cookies can lead to functional restrictions of the online offer.
4 Cooperation with processors, joint controllers, and third parties
If we disclose data to other persons and companies (e.g. processors, joint controllers or third parties), transfer it to them or grant them access to the data, this is only done on the basis of legal permission. This is the case, for example, if the transfer of data to third parties, such as payment service providers, is necessary for the fulfillment of the contract, the users have consented, a legal obligation provides for this or on the basis of our legitimate interests (e.g. when using intermediaries, web hosts, etc.).
If we disclose, transfer or otherwise grant access to data to other companies in our group of companies, this is done in particular for administrative purposes as a legitimate interest and on a basis corresponding to the legal requirements.
Transfer to third countries
5 Newsletter
Newsletter data
Inxmail
Our email newsletters are sent via the technical service provider Inxmail GmbH, Wentzigerstr. 17, 79106 Freiburg, Germany, Tel.: +49 761 296979-0, Email: info@inxmail.de, https://www.inxmail.de, to whom we pass on the data you provided when registering for the newsletter.
This forwarding takes place within the scope of order processing by Inxmail. Please note that your data is usually transferred to a server of Inxmail and stored there.
Inxmail uses this information to send and statistically evaluate the newsletters on our behalf. For the evaluation, the emails sent contain so-called web beacons or tracking pixels, which are single-pixel image files stored on our website.
This makes it possible to determine whether a newsletter message has been opened and which links, if any, have been clicked on. Technical information is also recorded (e.g. time of retrieval, IP address, browser type and operating system). The data is collected only in a pseudonymous form and is not linked to your other personal data, a direct personal reference is excluded.
This data is used only for the statistical analysis of newsletter campaigns. The results of these analyses can be used to better adapt future newsletters to the interests of the recipients. If you wish to object to the data analysis for statistical evaluation purposes, you must unsubscribe from the newsletter.
You can revoke the consent you have given at any time. You can also prevent the processing at any time by unsubscribing from the newsletter. You can also prevent the storage of cookies by setting your web browser accordingly. You can also prevent the storage and transmission of personal data by deactivating JavaScript in your web browser or installing a JavaScript blocker (e.g. https://noscript.net or https://www.ghostery.com). We would like to point out that these measures may mean that not all functions of our website are available.
Furthermore, Inxmail may use this data itself in accordance with Art. 6 (1) f) DSGVO on the basis of its own legitimate interest in designing and optimizing the service in line with demand, as well as for market research purposes, for example to determine which countries the recipients come from. However, Inxmail does not use the data of our newsletter recipients to write to them itself or to pass it on to third parties.
You can view Inxmail’s data protection provisions here: https://www.inxmail.de/datenschutz.
Newsletter tracking
Our newsletters contain so-called tracking pixels. A tracking pixel is a miniature graphic that is embedded in such emails that are sent in HTML format to enable log file recording and log file analysis. This enables statistical evaluation of the success or failure of online marketing campaigns. Based on the embedded tracking pixel, the company can see if and when an e-mail was opened by you and which links in the e-mail were called up by you.
Such personal data collected via the tracking pixels contained in the newsletters, are stored and evaluated by us in order to optimize the newsletter dispatch and to better adapt the content of future newsletters to your interests. This personal data will not be passed on to third parties. Data subjects are entitled at any time to revoke the separate declaration of consent given in this regard via the double opt-in procedure. After a revocation, this personal data will be deleted by us. We automatically interpret an unsubscription from the receipt of the newsletter as a revocation.
Such an evaluation is carried out in particular in accordance with Art. 6 para. 1 lit. a) DSGVO on the basis of our legitimate interests in the insertion of personalized advertising, market research and/or needs-based design of our website.
6 Awin partner program
On the basis of our legitimate interests (operation of our online offer within the meaning of Art. 6 para. 1 lit. f. GDPR), we participate in the partner program of AWIN AG, Eichhornstraße 3, 10785 Berlin, Germany. The program is designed to provide a medium for websites to earn advertising fees through the placement of advertisements and links to AWIN (affiliate system). AWIN uses cookies to determine the origin of the conclusion of the contract. AWIN can track that you have clicked on the partner link on this website and have concluded a contract with or via AWIN.
Further information can be found in AWIN’s privacy policy: https://www.awin.com/gb/privacy
7 Google Analytics
This website uses Google Analytics, a web analytics service. It is operated by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
Google Analytics uses so-called “cookies”. These are text files that are stored on your computer and that allow an analysis of the use of the website by you. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there.
Google Analytics cookies are stored based on Art. 6 (1) (f) GDPR. The website operator has a legitimate interest in analyzing user behavior to optimize both its website and its advertising.
8 Payment service providers
We use GiroSolution GmbH as a payment service provider for the use of payment systems on our Internet store portal. By means of an interface to their “GiroCheckout” system, GiroSolution GmbH ensures the system-side connection of our store portal to the following payment methods for us:
- giropay
- eps
- IDeal
- paydirekt
- Kreditkarten
- GiroCode
- Lastschrift
- PayPal
- Sofortüberweisung
Depending on the payment method, the following data is first passed on or retrieved to GiroSolution GmbH via GiroCheckout and then to the respective payment system and their service providers for the processing of payments:
- Name and first name
- IBAN
- e-mail address
- Information on the age of majority for giropay ID – age verification (the date of birth is not forwarded)
- Information on the confirmation of the account details for giropay ID – account verification (IBAN and the BIC as well as the first and last name of the associated account holder)
Further information can be found in the GiroSolution GmbH terms and conditions (www.girosolution.de).